Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CE258522B1511F08C4509BBDAE4EC9C.roa
File: 7CE258522B1511F08C4509BBDAE4EC9C.roa (raw, json)
Hash identifier: vSCUO1TIxhIuwENv4kXPWafYzk16oZWA4zGk/GO+BRY=
Subject key identifier: B1:88:E2:0A:65:5E:A8:A6:18:A3:3B:28:0B:E3:1D:2A:00:BC:C1:D9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F38
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CE258522B1511F08C4509BBDAE4EC9C.roa
Signing time: Wed 07 May 2025 07:32:54 +0000
ROA not before: Wed 07 May 2025 07:32:49 +0000
ROA not after: Fri 16 May 2025 07:32:49 +0000
asID: 133180
IP address blocks: 154.215.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98104 (0x17f38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 07:32:49 2025 GMT
Not After : May 16 07:32:49 2025 GMT
Subject: CN=681b0ca6-832c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0d:96:b3:bd:aa:01:74:ed:3a:f2:eb:0b:e9:
5b:74:91:f2:36:75:1c:49:c9:55:8c:64:2c:73:f2:
21:94:15:49:07:65:27:05:4a:79:c4:23:ec:26:b0:
bb:6e:e7:69:eb:9b:5f:20:12:d1:69:b3:11:be:63:
04:cf:65:37:e0:a7:e4:1a:fd:73:bd:c3:ff:c2:30:
9b:46:48:f4:41:5d:ce:a5:7c:df:9b:51:8c:e2:eb:
78:57:8e:49:9a:e8:ce:6b:0e:02:09:d1:ec:f0:ac:
44:46:bd:de:8f:52:b0:db:24:36:0c:67:cb:16:5f:
f0:51:b2:f5:5a:58:cf:de:8c:33:b4:12:9f:cf:6b:
3b:3a:95:88:9b:14:3d:71:28:d2:39:5e:93:58:97:
eb:ff:bc:8e:34:80:d8:e1:cf:57:18:b9:64:a1:06:
63:43:9a:f8:ae:c3:9a:71:3e:ea:2d:b9:29:27:47:
53:1a:15:b4:81:8a:6a:e0:c4:d0:a1:12:69:41:2b:
37:4a:a2:08:49:e3:9c:17:aa:12:36:84:ad:35:13:
f8:9d:b3:7e:79:c0:46:6d:2b:76:26:72:7b:fe:1c:
2a:52:43:cb:6b:34:f7:8e:72:2a:64:97:69:a1:bd:
26:7d:c4:25:f8:e9:a0:56:54:8b:5e:09:b0:a5:7a:
c1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:88:E2:0A:65:5E:A8:A6:18:A3:3B:28:0B:E3:1D:2A:00:BC:C1:D9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CE258522B1511F08C4509BBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.64.0/18
Signature Algorithm: sha256WithRSAEncryption
26:28:d7:3b:e9:df:1b:ae:e6:26:96:1e:b9:9f:02:ae:0d:81:
f9:5b:bb:5c:a7:e9:f8:bf:9e:37:67:0d:7f:fe:e1:0d:b7:b5:
40:87:0c:03:ac:eb:14:f9:cf:6d:12:a3:c5:8b:2b:08:8b:31:
06:86:d8:0a:32:d0:1d:d9:a5:04:a1:48:71:31:2a:98:19:6b:
fb:f8:cb:56:9e:a6:4c:b4:50:bc:62:a0:d3:fe:cf:66:7e:5a:
02:96:29:eb:fc:7f:d0:3a:c1:bd:05:0e:f9:27:1d:3e:39:8a:
09:dd:72:ee:fa:16:4e:20:8d:79:b0:03:8b:6f:7f:00:9c:41:
86:22:d7:1f:20:f4:2d:3f:91:8a:3c:13:61:ce:6a:c0:88:8b:
4d:94:2d:85:29:7c:95:01:26:11:ea:e1:0b:ed:f8:64:ff:2d:
18:3e:56:94:5f:26:c9:a6:8b:5b:2c:90:e4:5a:41:da:d1:b5:
bb:93:84:3d:53:af:d9:e0:72:6c:3a:d7:d8:c1:0d:1d:09:6c:
7b:3c:f8:2a:a1:b3:1b:d6:09:ac:f3:ac:40:db:ab:ed:0e:24:
97:fa:07:4a:a6:ce:fd:90:be:8b:91:d8:c9:37:f4:0e:18:d5:
51:d8:e8:59:78:0f:fc:28:44:a3:52:91:9e:90:75:4e:cf:23:
82:e0:52:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 07:11:00 2025 by rpki-client